Certified Advanced Persistent Threat Analyst


Certified Advanced Persistent Threat Analyst, Singapore elarning online course

Course Description

Cyber-attacks have become so sophisticated over the years, that a new term has emerged - Advanced Persistent Threat, which we will refer to as APT. An APT is a group of individuals that have both the means and the intent to launch persistent attacks against specific targets. Understanding these groups and their behavior is important when evaluating threats against any organization.

Hackers have traditionally targeted large corporations, but today small to midsize businesses are being attacked with the same type of highly sophisticated malware. These new strains of advanced malware are often referred to as APTs

Modern malware uses Advanced techniques such as encrypted communication channels, kernel-level rootkits, and sophisticated evasion capabilities to get past a network’s defenses. More importantly, they often leverage zero day vulnerabilities – flaws for which no patch is available yet and no signature has been written.

Modern malware is often Persistent and designed to stick around. It’s stealthy and carefully hides its communications. It lives in a victim’s network for as long as possible, often cleaning up after itself by deleting logs, using strong encryption, and only reporting back to its controller in small, obfuscated bursts of communication.

Many attacks are now blended combinations of different techniques. A common tactic for hackers is to initiate an APT with spear phishing. This involves sending a carefully crafted email that appears to be in the from of a known individual or business with a link to a malicious website or an infected download.

Once the initial breach is successful, attackers can further damage defenses by disabling security protocols, changing security settings or stealing passwords. Groups of highly skilled, motivated, and very well-funded attackers represent significant Threats because they have very specific targets and goals in mind – often financial gain from theft of credit cards and other valuable account information.

Here are the topics that we will be covering in this course. We will begin by going over the APT Lifecycle and teach you a structured approach to analyze and assess inherent vulnerabilities. We will teach you mitigation and countermeasures that may prevent an attacker from gaining a foothold into an organization.

Next, we will get you familiar with APT1 Group and some common ATPs we have seen in the last few years like Stuxnet, and two new ones, Adwind and Poseidon. Lastly, we will get you familiar with the Cyber World War.


Course Objectives

1. Understanding APTs
2. Equation Group
3. Advanced Dissecting Techniques
4. Fighting ATPs

Related Courses

  • Certified Cyber Threat Intelligence Analyst

    Certified Cyber Threat Intelligence Analyst

    SGD $299.00

    Course Description

    The Cyber Security Threat Intelligence Researcher Certification will help you acquire the skills needed to find out who is behind an attack, what the specific threat group is, the nation from which the attack is being launched, as well as techniques being used to launch this attack. You will know how to take a small piece of malware, find out who is responsible for launching it, the threat actor location and also how to take down that threat actor, with the support of your local law enforcement. In today’s cyber security landscape, it isn't possible to prevent every attacks. Today’s attackers have significant funding, are patient, sophisticated, and target vulnerabilities in people and processes as well as technologies. With organizations increasingly relying on digitized information and sharing vast amounts of data across the globe, they have become easier targets for many different forms of attack. As a result, every company’s day-to-day operations, data and intellectual property are seriously at risk. In a corporate context, a cyber attack can not only damage your brand and reputation, it can also result in loss of competitive advantage, create legal/regulatory noncompliance and cause steep financial damage. Today’s secure environment will have vulnerabilities in it tomorrow, so an organization cannot allow itself to become complacent. There is only so much an organization can do by defending itself against threats that have already occurred. If an organization only reacts to new threats as they come up, are likely acting too late. It is important to understand and prioritize cyber threat intelligence processes, and how they can be integrated into an organization’s security operations in a way that adds value.  Cyber threat intelligence (CTI) is an advanced process enabling organizations to gather valuable insights based on analysis of contextual and situational risks. These processes can be tailored to the organization’s specific threat landscape, industry and market. This intelligence can make a significant difference to organizations' abilities to anticipate breaches before they occur. Giving organizations the ability to respond quickly, decisively and effectively to confirmed breaches allows them to proactively maneuver defense mechanisms into place, prior to and during the attack. In this course, we’ll introduce you to the 8 phases of threat intelligence: Hunting - The goal of hunting is to establish techniques to collect samples from different sources that help to start profiling malicious threat actors. Features Extraction - The goal of Features Extraction is to identify unique Static features in the binaries that help to classify them into a specific malicious group. Behavior Extraction - The goal of Behavior Extraction is to identify unique Dynamic features in the binaries that help to classify them into a specific malicious group. Clustering and Correlation -  The goal of Clustering and Correlation is to classify malware based on Features and Behavior extracted and correlate the information to understand the attack flow. Threat Actor Attribution - The goal of Threat Actors is to locate the threat actors behind the malicious clusters identified. Tracking - The goal of tracking is to anticipate new attacks and identify new variants proactively. Taking Down - The goal of Taking down is to Dismantled Organized Crime Operations

    Read more...

  • Data Security and Privacy Training

    Data Security and Privacy Training

    SGD $299.00

    Course Description

    Did you know the number of data records compromised in publicly disclosed data breaches surpassed 2.5 billion in 2017. And as we all know, Facebook announced a data breach in 2018, where 87 million user accounts were compromised Our data is being compromised more than ever. Training all employees on how to protect themselves against attacks is one of the most effective ways to protect your organization. Course Objectives The objective of this training is to ensure that all your employees can clearly Identify, Mitigate and Report any potential cyber threats to your organization. Training Approach This training offers a fresh approach by presenting engaging content in a scenario-based format. This training uses micro-learning methodology to ensure learners aren’t overwhelmed with information. Throughout the course, the learner will take interactive quizzes and assessments to test their readiness. The training is available on-demand so learners can take at their own pace or part of a designated employee training program. Who’s this for? This compliance training is designed for all employee role types from office administration to CXO. This course will cover the following topics: Course Topics What is Information Security What are Threats How to Practice Information Security at Work Email Safety and Safe Online Browsing Implementing a Security Policy

    Read more...

  • Google Cloud Professional Cloud Developer

    Google Cloud Professional Cloud Developer

    SGD $29.00

    Course Description

    "A Professional Cloud Developer builds scalable and highly available applications using Google recommended practices and tools that leverage fully managed services. This individual has experience with next generation databases, runtime environments and developer tools. They also have proficiency with at least one general purpose programming language and are skilled with using Stackdriver to produce meaningful metrics and logs to debug and trace code. Course is meant to be a Crash Course for taking the Google Cloud Professional Cloud Developer Exam. It would be expected or at a minimum to have experience with Google Cloud and be a developer. Course has compressed the study objectives listed by Google Cloud and we have taken the beta exam. The exam is very challenging and will challenge the ""average"" developer.

    Read more...

Content

Understanding APTs

+

Advanced Persistent Threat Defender Course Intro

APT Overview Part 1

APT Overview Part 2

APT Overview Part 3

APT Overview Part 4

APT Overview Part 5

Cyber Kill Chain & APT Lifecycle Part 4

Cyber Kill Chain & APT Lifecycle Part 5

Cyber Kill Chain & APT Lifecycle Part 6

Cyber Kill Chain & APT Lifecycle Part 7

Cyber Kill Chain & APT Lifecycle Part 8

APT1 Overview

Stuxnet Overview Part 1

Stuxnet Overview Part 2

Stuxnet Overview Part 3

Cyberwar: New Domain of Warfare

Mr. Robot Threat Capabilities

Cyber Kill Chain & APT Lifecycle Part 1

Cyber Kill Chain & APT Lifecycle Part 2

Cyber Kill Chain & APT Lifecycle Part 3

Equation Group

+

Equation Group Overview Part 1

Equation Group Overview Part 2

Equation Group Components Part 1

Equation Group Components Part 2

Equation Group Components Part 3

DoubleFantasy

EquationDrug

GrayFish

Fanny Part 1

Fanny Part 2

Infection Mechanism

LAB 2: Equation Group

Advanced Dissecting Techniques

+

Advanced Dissecting Techniques Overview Part 1

Advanced Dissecting Techniques Overview Part 2

Binary Instrumentation Part 1

Binary Instrumentation Part 2

Binary Instrumentation Part 3

Automated String Decoding Part 1

Automated String Decoding Part 2

Automated String Decoding Part 3

Automated String Decoding Part 4

Immunity Debugger PyCommands Part 1

Immunity Debugger PyCommands Part 2

Immunity Debugger PyCommands Part 3

Immunity Debugger PyCommands Part 4

Windows Kernel Drivers Analysis? Part 1

Windows Kernel Drivers Analysis? Part 2

Windows Kernel Drivers Analysis? Part 3

Windows Kernel Drivers Analysis? Part 4

Windows Kernel Drivers Analysis? Part 5

Fighting ATPs

+

The Challenge Part 1

The Challenge Part 2

The Challenge Part 3

Callback detection strategy Part 1

Callback detection strategy Part 2

Application Crashing Monitoring

Certified Advanced Persistent Threat Analyst

SGD $299.00
(Price excludes GST)
GET ACCESS NOW
Convince your boss email
This site is best viewed using the latest versions of Google Chrome, Apple Safari, Mozilla FireFox, Microsoft Internet Explorer 11 and Edge which supports HTML5/Webkit technologies.

Payment

You are making payment for the following course :
 
Price (SGD$) : 299.00
 
Redemption
Cashback balance ($) : 0.00
 
Coupon Code
 
GST 7% ($) : 20.93
Final amount to pay ($) : 319.93